I am running Wingate 5.2.2 with Puresight 1.1.
I'm using WWW Proxy.
I don't have Transparent Redirection turned on.
Puresight is checked in the Plug-ins tab of WWW Proxy service
I have added .mp3, .asf, .rm, .wma, etc. to the puresight ban list

But the Ban List doesn't work. Client machine still can download any files.

Is the client machine going through the proxy ? (I.e., when it surfs, can you see it showing up as HTTP traffic or as NAT traffic ?)

If it shows up as NAT, you need to enable TR so it will go through the proxy.

Secondly, double check that the plugin is actually enabled for the WWW Proxy Service. It needs to be in the list of plugins and the tickbox must be checked. Also verify that the users (If you're using authentication, specific users) are added to the list of users for which the plugin will be used.

Third, ensure that the entries you've added to the Ban List are separate, i.e.

mp3
asf
rm
wma
etc.

rather than on one line. (Probably not the case, but just making sure)

I make sure the client machines are going throuth the proxy. I only use WWW proxy. I don't use NAT.

>double check that the plugin is actually enabled for the WWW Proxy Service.

I make sure the plugin is actually enabled for the WWW proxy and the users are added to the list of users for which the plugin will be used.

It works for sites that contain references to sex or gambling.
It does work for url like http://xxxx.mp3yyy.zzz/. Client machines can't access sits which domain contain the key words in the Ban List
But it doesn't work for url like http://xxxx.yyyy.zzz/abc/demo.mp3. Client machines still download files which I want to restirct.

That all seems as if it should work. If you can send me a specific URL (Via email or forum) I can check the negotiation between the server and the client. As PureSight does not check binary data, it is possible that the information reported by the web-server will put it into a position where PureSight will not check against any of its lists.

If that is the case, you can use the HTTP Proxy's ban list or advanced criterion to block those extentions.

Yes, you can block file downloads by changing your configuration settings in the WWW Proxy Service Policies as follows:Open Gatekeeper.Click on the Services tab.Double click on the WWW Proxy ServiceClick on the policies tab.Add a policy and enable the Ban List with the following entries:This criterion is met if... HTTP URL or Server name ends with .exe" "This criterion is met if... HTTP URL or Server name ends with .zip" "This criterion is met if... HTTP URL or Server name ends with ."

If the client machines is passing through a proxy server, then this would be a relatively easy task. But if it is not, you need to do some changes with the TR function for it go pass through the proxy server. Also check on the services that are being run.

I see that you are not using NAT, but it is a good service that would make way for easy administration.